124 matches found
CVE-2024-51377
An issue in Ladybird Web Solution Faveo Helpdesk & Servicedesk On-Premise and Cloud 9.2.0 allows a remote attacker to execute arbitrary code via the Subject and Identifier fields...
CVE-2024-46482
An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution Faveo-Helpdesk v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .html or .svg file...
CVE-2024-46482
An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution Faveo-Helpdesk v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .html or .svg file...
CVE-2024-46482
An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution Faveo-Helpdesk v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .html or .svg file...
CVE-2024-37557
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Soham Web Solution WP Cookie Law Info allows Stored XSS.This issue affects WP Cookie Law Info: from n/a through 1.1...
CVE-2024-37557
CVE-2024-37557 is a stored Cross‑Site Scripting vulnerability in the WordPress plugin WP Cookie Law Info (affected: n/a through 1.1). The issue is described as “Improper Neutralization of Input During Web Page Generation” (XSS) and is attributed to the plugin’s handling of user-controlled input d...
CVE-2024-37557 WordPress WP Cookie Law Info plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Soham Web Solution WP Cookie Law Info allows Stored XSS.This issue affects WP Cookie Law Info: from n/a through 1.1...
CVE-2024-27989
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution WP Responsive Tabs horizontal vertical and accordion Tabs allows Stored XSS.This issue affects WP Responsive Tabs horizontal vertical and accordion Tabs: from n/a through...
CVE-2024-27989 WordPress WP Responsive Tabs horizontal vertical and accordion Tabs plugin <= 1.1.17 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution WP Responsive Tabs horizontal vertical and accordion Tabs allows Stored XSS.This issue affects WP Responsive Tabs horizontal vertical and accordion Tabs: from n/a through...
CVE-2024-27960
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution Email Subscription Popup allows Stored XSS.This issue affects Email Subscription Popup: from n/a through 1.2.20...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Post Sliders & Post Grids plugin = 1.0.20 versions...
CVE-2023-47226
CVE-2023-47226 affects the WordPress plugin Post Sliders & Post Grids (I Thirteen Web Solution) up to version 1.0.20. Root cause is an authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability, enabling an administrator to inject scripts that could be executed in other users’ context...
CVE-2023-47226 WordPress Post Sliders & Post Grids Plugin <= 1.0.20 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Post Sliders & Post Grids plugin = 1.0.20 versions...
PT-2023-30372 · WordPress · I Thirteen Web Solution Post Sliders & Post Grids
Name of the Vulnerable Software and Affected Versions: I Thirteen Web Solution Post Sliders & Post Grids plugin versions = 1.0.20 Description: The issue is related to an Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with administrative access can...
CVE-2023-41731
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution WordPress publish post email notification plugin = 1.0.2.2 versions...
CVE-2023-41658
CVE-2023-41658 affects the WordPress plugin “Photo Gallery Slideshow & Masonry Tiled Gallery” versions 1.0.13 (patches indicate 1.0.14 fixes) or disable the plugin as a workaround. No exploitation details or in-the-wild exploit status are provided in the supplied documents. Additional context fr...
PT-2023-28029 · WordPress · I Thirteen Web Solution Photo Gallery Slideshow & Masonry Tiled Gallery
Name of the Vulnerable Software and Affected Versions: I Thirteen Web Solution Photo Gallery Slideshow & Masonry Tiled Gallery plugin versions = 1.0.13 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts...
CVE-2023-32597
Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Video Gallery plugin = 1.0.10 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Video Gallery plugin = 1.0.10 versions...
CVE-2023-32597
CVE-2023-32597 concerns the I Thirteen Web Solution Video Gallery WordPress plugin (versions up to and including 1.0.10). The vulnerability is an unauthenticated, reflected Cross-Site Scripting (XSS) flaw in the plugin, where attacker-supplied input can be reflected in pages. Patchstack and relat...